In the last installment of this benchmarking series for The Privacy Advisor, Alex Wall, CIPP/E, CIPP/US, CIPM, analyzed the percentage of privacy incidents that rise to the level of a data breach and require notification under various data breach laws. Data revealed by Radar indicated that fewer than 1 in 10 incidents require notice. Once armed with this knowledge, the next metric many organizations will want to establish involves risk mitigation. In this second installment of a series on establishing program metrics to benchmark your program, Radar’s Mahmood Sher-Jan explores the use of contractual agreements as effective administrative safeguards.
If you want to comment on this post, you need to login.